- Supports Endpoint Detection and Response (EDR) applications from an operational capacity and ensures cyber security service availability for all endpoint (i.e. servers, desktops and laptops).
- Monitor EDR & AV logs (Carbon Black, Sophos)
- Monitor dashboard for compliance, threats and troubleshoot
- Check if any incidents are missed by L1 and follow up for the cause
- Basic level of fine tune policies and provide service improve plans.
- Maintain the SOP for the new events
- EDR- Carbon Black/ Sophos
- Endpoint Security